Changeset 422

Timestamp:

Mar 26, 2007 2:20:43 AM (6 years ago)

Author:

jrollins

Message:

cereal: Major work on new 0.3 release. See debian/changelog.

Unfortunately, I seem to have broken it and can't figure how.
The sessions are somehow not created properly, so that the session
owner can not attach to the session. I can't work on it any more right
now, though, so I'll have to come back to it.
Any suggestions would be much appreciated.

Location:

trunk/cereal

Files:

• TODO (modified) (1 diff)
• debian/changelog (modified) (1 diff)
• fs/usr/bin/cereal (modified) (1 diff)
• fs/usr/sbin/cereal-admin (modified) (8 diffs)
• fs/usr/share/cereal/common (modified) (2 diffs)
• fs/usr/share/cereal/logrun (modified) (2 diffs)
• fs/usr/share/cereal/mainrun (modified) (3 diffs)

trunk/cereal/TODO

@@ -12 +12 @@
 shared access to screen sessions?
 
-include cereal log reader
-- maybe as part of 'cereal' script
-
-add flags (change "tags" to "flags")
-- state flag (sflag)
-- permission flag (pflag)
-
-add functionality to 'cereal' script
-- list cereal sessions based on user flag check
-- log reader
-
 make sure all scripts run with dash instead of bash for lighter-weight systems.
 
-why not have default GROUP be dialout?
- 
-need to figure out correct way to do packaging.
-- ** build-pkg script not currently working **
-
-work on documentation
-
 bash completion

trunk/cereal/debian/changelog

@@ +1 @@
+cereal (0.3-1) unstable; urgency=low
+
+  * New upstream version
+  * fixed broken path to common file.
+  * removed unnecessary specification of GROUP and LOGUSER
+  * added flags in session display
+  * added subcommands to cereal script, including primitive log reader
+  * tried to clean up/simplify a lot of the code
+  * FIXME: need postinst script to create cereal user
+  * FIXME: screen sessions do not get properly created (proper user unable to attach)
+  * NOT FOR RELEASE
+
+ -- Jameson Rollins <jrollins@fifthhorseman.net>  Mon, 26 Mar 2007 02:11:26 -0400
+
 cereal (0.2-2) unstable; urgency=low
 

trunk/cereal/fs/usr/bin/cereal

@@ -11 +11 @@
 # or later.
 
+##################################################
+CMD=$(basename $0)
+
+SHAREDIR=${SHAREDIR:-"/usr/share/cereal"}
+export SHAREDIR
+source "$SHAREDIR/common"
+##################################################
+
 function usage {
 cat <<EOF
-Usage: $(basename $0) [SESSION]
-Connect to running cereal screen session attached to SESSION.
-If SESSION not specified, list available hosts and exit.
+Usage: $CMD <subcommand> [arg]
+Cereal client program.
+
+subcommands:
+  attach SESSION                           attach to session
+  follow SESSION                           follow session log
+  list                                     list all sessions
+
 EOF
 }
 
-export SHAREDIR="/usr/local/share/cereal"
+attach() {
+    screen -r -S "cereal:$SESSION" || failure "Are you the correct user?"
+}
 
-. "$SHAREDIR/common"
+follow() {
+    tail -n 100 -F "$SERVICE.$SESSION/log/main/current"
+}
 
-if [[ $# < 1 ]] ; then
-    echo "Specify session to connect to:"
-    list_enabled "$USER"
-    exit 0
-fi
+###############################################################
+### MAIN
 
-if [ "$1" = '-h' -o "$1" = '--help' ] ; then
-    usage
-    exit 0
-else
-    SESSION="$1"
-fi
+COMMAND="$1"
+[ "$COMMAND" ] || failure "Type '$CMD help' for usage."
+shift
 
-if [ -d "$SESSIONDIR/$SESSION" ] ; then
-    screen -r -S "cereal:$SESSION" || failure "Are you the correct user?  Type 'cereal' for more info."
-else
-    failure "Host '$SESSION' not found."
-fi
+case $COMMAND in
+    'attach'|'follow')
+        SESSION="$1"
+        [ "$SESSION" ] || failure "Not enough input arguments.  Type '$CMD help' for more info."
+        check_session "$SESSION" || failure "Session '$SESSION' not found.
+Type 'cereal list' to list sessions."
+        check_enabled "$SESSION" || failure "Session '$SESSION' not enabled.
+Type 'cereal list' to list sessions."
+
+        "$COMMAND"
+        ;;
+    'list')
+        list
+        ;;
+    'help')
+        usage
+        ;;
+    *)
+        failure "Unknown command: '$COMMAND'
+Type '$CMD help' for usage."
+        ;;
+esac

trunk/cereal/fs/usr/sbin/cereal-admin

@@ -12 +12 @@
 # or later.
 
+##################################################
+CMD=$(basename $0)
+
+SHAREDIR=${SHAREDIR:-"/usr/share/cereal"}
+export SHAREDIR
+source "$SHAREDIR/common"
+##################################################
+
 function usage {
 cat <<EOF
-Usage: $(basename $0) <subcommand> [arg]
+Usage: $CMD <subcommand> [arg]
+Cereal session management program.
 
 subcommands:
-  create SESSION TTY BAUD USER GROUP [LOGUSER [LOGGROUP]]
-                                      create cereal session
-  enable SESSION [SESSION]...         enable cereal sessions
-  disable SESSION [SESSION]...        disable cereal sessions
-  remove SESSION [SESSION]...         remove cereal sessions
-  list                                list all sessions
+  create SESSION TTY BAUD USER LOGGROUP    create cereal session
+  enable SESSION [SESSION]...              enable cereal sessions
+  disable SESSION [SESSION]...             disable cereal sessions
+  remove SESSION [SESSION]...              remove cereal sessions
+  list [USER]                              list all sessions [with USER]
 
 EOF
-
-}
-
-export SHAREDIR="/usr/local/share/cereal"
-. "$SHAREDIR/common"
-
+}
+
+# create session
 function create {
-    if (( $# < 5 )) ; then
-        failure "Not enough input arguments.
-Usage: $(basename $0) create SESSION TTY BAUD USER GROUP [LOGUSER]"
-    fi
+    (( $# < 5 )) && failure "Not enough input arguments.  Type '$CMD help' for more info."
 
     SESSION="$1"
     TTY="$2"
     BAUD="$3"
-    USER="$4"
-    GROUP="$5"
-    if [ $6 ] ; then
-        LOGUSER="$6"
-    else
-        LOGUSER="$USER"
-    fi
-    if [ $7 ] ; then
-        LOGGROUP="$7"
-    else
-        LOGGROUP="adm"
-    fi
+    SUSER="$4"
+    SGROUP=$(ls -l "$TTY" | awk '{ print $4 }')
+    LOGUSER='cereal'
+    LOGGROUP="$5"
 
     if [ -d "$SESSIONDIR/$SESSION" ] ; then
@@ -57 +51 @@
     fi
 
-    if ! check_istty "$TTY" ; then
-        failure "'$TTY' is not a valid tty."
-    elif ! check_user "$USER" ; then
-        failure "'$USER' is not a valid user."
-    elif ! check_group "$GROUP" ; then
-        failure "'$GROUP' is not a valid group."
-    elif ! check_user "$LOGUSER" ; then
-        failure "'$LOGUSER' is not a valid user."
-    elif ! check_group "$LOGGROUP" ; then
-        failure "'$LOGGROUP' is not a valid group."
-    elif ! check_tty_rw "$USER" "$GROUP" "$TTY" ; then
-        failure "User '$USER' does not have read/write access to '$TTY' while in group '$GROUP'."
-    fi
-
+    check_istty "$TTY"
+    check_user "$SUSER"
+    check_group "$SGROUP"
+    check_user "$LOGUSER"
+    check_group "$LOGGROUP"
+    check_chpst "$SUSER" "$SGROUP"
+    check_tty_rw "$SUSER" "$SGROUP" "$TTY"
+        
     mkdir -p "$SESSIONDIR/$SESSION"
 
@@ -81 +69 @@
     echo "$TTY" > "$SESSIONDIR/$SESSION/env/TTY"
     echo "$BAUD" > "$SESSIONDIR/$SESSION/env/BAUD" 
-    echo "$USER" > "$SESSIONDIR/$SESSION/env/USER"
-    echo "$GROUP" > "$SESSIONDIR/$SESSION/env/GROUP"
+    echo "$SUSER" > "$SESSIONDIR/$SESSION/env/USER"
+    echo "$SGROUP" > "$SESSIONDIR/$SESSION/env/GROUP"
     echo "$LOGUSER" > "$SESSIONDIR/$SESSION/env/LOGUSER"
     echo "$LOGGROUP" > "$SESSIONDIR/$SESSION/env/LOGGROUP"
@@ -94 +82 @@
 
     mkfifo "$SESSIONDIR/$SESSION/socket"
-    chown "$USER" "$SESSIONDIR/$SESSION/socket"
+    chown "$SUSER" "$SESSIONDIR/$SESSION/socket"
     ln -s "$SHAREDIR/logrun" "$SESSIONDIR/$SESSION/log/run" 
     
@@ -102 +90 @@
 
 function enable_check {
-    if ! check_tty_rw "$USER" "$GROUP" "$TTY" ; then
-        failure "User '$USER' does not have read/write access to '$TTY' while in group '$GROUP'."
-    fi
+    check_tty_rw "$USER" "$GROUP" "$TTY"
 }
 export -f enable_check
 
+# enable session
 function enable {
     local ERR=0
 
-    if [ -z "$1" ] ; then
-        failure "Not enough input arguments.
-Usage: $(basename $0) enable SESSION [SESSION]..."
-    fi
+    [ "$1" ] || failure "Not enough input arguments.  Type '$CMD help' for more info."
 
     for SESSION ; do
-        if [ ! -d "$SESSIONDIR/$SESSION" ] ; then
+        if ! check_session "$SESSION" ; then
             echo "Session '$SESSION' not found."
             ((ERR++))
             continue
         fi
-        if [ -L "$SERVICE.$SESSION" ] ; then
-            echo "Session '$SESSION' appears to already be enabled."
+        if check_enabled "$SESSION" ; then
+            echo "Session '$SESSION' already be enabled."
             ((ERR++))
             continue
         fi
         if ! chpst -e "$SESSIONDIR/$SESSION/env/" sh -c enable_check ; then
-            echo "User for session '$SESSION' does not have read/write access to session TTY."
             ((ERR++))
             continue
@@ -141 +124 @@
 }
 
+# disable session
 function disable {
     local ERR=0
 
-    if [ -z "$1" ] ; then
-        failure "Not enough input arguments.
-Usage: $(basename $0) disable SESSION [SESSION]..."
-    fi
+    [ "$1" ] || failure "Not enough input arguments.  Type '$CMD help' for more info."
     
     for SESSION ; do
-        if [ ! -d "$SESSIONDIR/$SESSION" ] ; then
+        if ! check_session "$SESSION" ] ; then
             echo "Session '$SESSION' not found."
             ((ERR++))
             continue
         fi
-        if [ ! -L "$SERVICE.$SESSION" ] ; then
-            echo "Session '$SESSION' does not appear to be enabled."
+        if ! check_enabled "$SESSION" ] ; then
+            echo "Session '$SESSION' not enabled."
             ((ERR++))
             continue
@@ -170 +151 @@
 }
 
+# remove session
 function remove {
     local ERR=0
 
-    if [ -z "$1" ] ; then
-        failure "Not enough input arguments.
-Usage: $(basename $0) remove SESSION [SESSION]..."
-    fi
+    [ "$1" ] || failure "Not enough input arguments.  Type '$CMD help' for more info."
 
     for SESSION ; do
-        if [ ! -d "$SESSIONDIR/$SESSION" ] ; then
+        if ! check_session "$SESSION" ; then
             echo "Session '$SESSION' not found."
             ((ERR++))
             continue
         fi
-        if [ -L "$SERVICE.$SESSION" ] ; then
-            echo "Session '$SESSION' is currently enabled.  Please disable first."
-            ((ERR++))
-            continue
-        fi
-
+        if check_enabled "$SESSION" ; then
+            echo "Session '$SESSION' is currently enabled."
+            read -p "Disable session '$SESSION' first? [Y|n]: " -n 1 OK ; [ -z $OK ] || echo
+            if [ -z "$OK" -o "${OK/y/Y}" = 'Y' ] ; then
+                disable "$SESSION"
+            else
+                ((ERR++))
+                continue
+            fi
+        fi
         read -p "Really remove session '$SESSION'? [Y|n]: " -n 1 OK ; [ -z $OK ] || echo
         if [ -z "$OK" -o "${OK/y/Y}" = 'Y' ] ; then
@@ -202 +185 @@
 }
 
+###############################################################
+### MAIN
 
 COMMAND="$1"
-if [ -z "$COMMAND" ] ; then
-    usage
-    exit 0
-fi
+[ "$COMMAND" ] || failure "Type '$CMD help' for usage."
 shift
 
 case $COMMAND in
     'create'|'enable'|'disable'|'remove'|'list')
-        $COMMAND "$@"
+        "$COMMAND" "$@"
+        ;;
+    'help')
+        usage
         ;;
     *)
-        usage
-        exit 0
+        failure "Unknown command: '$COMMAND'
+Type '$CMD help' for usage."
         ;;
 esac

trunk/cereal/fs/usr/share/cereal/common

@@ -9 +9 @@
 # or later.
 
+##################################################
 # managed directories
 export ETC="/etc/cereal"
-export SESSIONDIR="/var/local/lib/cereal"
+export SESSIONDIR="/var/lib/cereal"
 export SERVICEDIR="/var/service"
 export SERVICE="$SERVICEDIR/cereal"
-
-# check if the user can read/write to a TTY
-# check_tty_rw USER GROUP TTY
-function check_tty_rw {
-    chpst -u "$1:$2" bash -c "test -r $3 && test -w $3"
-}
-export -f check_tty_rw
-
-# check if TTY is valid tty
-# check_istty TTY
-function check_istty {
-    [ -c "$1" ]
-}
-export -f check_istty
-
-function check_user {
-    getent passwd "$1" > /dev/null
-}
-export -f check_user
-
-function check_group {
-    getent group "$1" > /dev/null
-}
-export -f check_group
+##################################################
 
 function failure {
@@ -45 +23 @@
 export -f failure
 
-function display_session {
+# check if TTY is valid tty
+# check_istty TTY
+function check_istty {
+    [ -c "$1" ] || failure "'$1' is not a valid tty."
+}
+export -f check_istty
+
+# check if USER is valid
+# check_user USER
+function check_user {
+    getent passwd "$1" > /dev/null || failure "'$1' is not a valid user."
+}
+export -f check_user
+
+# check if GROUP is valid
+# check_group GROUP
+function check_group {
+    getent group "$1" > /dev/null || failure "'$1' is not a valid group."
+}
+export -f check_group
+
+# check session creation privileges
+# check_chpst USER GROUP
+function check_chpst {
+    chpst -u "$1:$2" true
+}
+export -f check_chpst
+
+# check if the user can read/write to a TTY
+# check_tty_rw USER GROUP TTY
+function check_tty_rw {
+    chpst -u "$1:$2" bash -c "test -r $3 && test -w $3" || failure "User '$1' does not have read/write access to tty '$3', or tty is not g+rw."
+}
+export -f check_tty_rw
+
+# check if session exists
+# check_session SESSION
+check_session() {
+    ls "$SESSIONDIR" | grep -q "$1"
+}
+export -f check_session
+
+# check_enabled SESSION
+check_enabled() {
+    [ -L "$SERVICE.$1" ]
+}
+export -f check_enabled
+
+# check_can_attach SESSION USER
+check_can_attach() {
+    [ "$2" = $(cat "$SESSIONDIR/$1/env/USER") ]
+}
+export -f check_can_attach
+
+# check_can_follow SESSION USER
+check_can_follow() {
+    local LOGUSER=$(cat "$SESSIONDIR/$1/env/LOGUSER")
+    local LOGGROUP=$(cat "$SESSIONDIR/$1/env/LOGGROUP")
+    [ "$2" = "$LOGUSER" ] || groups "$2" | grep -q "$LOGGROUP" || [ $(id -u "$USER") = '0' ]
+
+}
+export -f check_can_follow
+
+# display_session SESSION [USER]
+display_session() {
     local SESSION="$1"
-    if [ -L "$SERVICE.$SESSION" ] ; then
+    USER=${2:-"$USER"}
+
+    check_user "$USER"
+    check_session "$SESSION" || failure "Session '$SESSION' does not exist."
+
+    # set state flag ('+' enabled, '-' disabled)
+    local SFLAG='-'
+    if check_enabled "$SESSION" ; then
         local SFLAG='+'
-    else
-        local SFLAG='-'
     fi
-    
+    # set attach flag
+    local AFLAG='-'
+    if check_can_attach "$SESSION" "$USER" ; then
+        local AFLAG='a'
+    fi
+    # set follow flag
+    local FFLAG='-'
+    if check_can_follow "$SESSION" "$USER" ; then
+        local FFLAG='f'
+    fi
+
     cd "$SESSIONDIR/$SESSION/env"
-    echo "$SFLAG $SESSION $(cat TTY) $(cat BAUD) $(cat USER) $(cat GROUP) $(cat LOGUSER) $(cat LOGGROUP)"
+    echo "$SFLAG$AFLAG$FFLAG $SESSION $(cat TTY) $(cat BAUD) $(cat USER) $(cat LOGGROUP)"
 }
 export -f display_session
 
+# list SESSION [USER]
 function list {
+    local SESSION
     local SESSIONS=$(ls -1 "$SESSIONDIR" 2> /dev/null)
+    USER=${1:-"$USER"}
+
     if [ -z "$SESSIONS" ] ; then
-        echo "There do not appear to be any sessions."
+        echo "There are no sessions."
         exit 0
     fi
-    local SESSION
-    #echo "(state SESSION tty baud USER group loguser loggroup)"
+
     for SESSION in $SESSIONS ; do
-        display_session "$SESSION"
+        display_session "$SESSION" "$USER"
     done
 }
 export -f list
-
-function list_enabled {
-    local CHECK_USER="$1"
-    local SESSIONS=$(ls -1 "$SERVICEDIR" 2> /dev/null | sed s/cereal.//)
-    if [ -z "$SESSIONS" ] ; then
-        echo "There do not appear to be any enabled sessions."
-        exit 0
-    fi
-    local SESSION
-    #echo "(state SESSION tty baud USER group loguser loggroup)"
-    for SESSION in $SESSIONS ; do
-        display_session "$SESSION"
-    done
-}
-export -f list_enabled

trunk/cereal/fs/usr/share/cereal/logrun

@@ -1 @@
-#!/bin/bash
+#!/bin/bash -e
 
 # The cereal scripts were written by
@@ -11 +11 @@
 exec 2>&1
 
-export SHAREDIR="/usr/local/share/cereal"
-. "$SHAREDIR/common"
+export SHAREDIR="/usr/share/cereal"
+source "$SHAREDIR/common"
 
 LOGUSER="$(cat ../env/LOGUSER)"
 
-if ! check_group "$LOGUSER" ; then
-    failure "'$LOGUSER' is not a valid user."
-fi
+check_group "$LOGUSER"
     
 exec chpst -u "$LOGUSER" svlogd -tt ./main <../socket

trunk/cereal/fs/usr/share/cereal/mainrun

@@ -1 @@
-#!/bin/bash
+#!/bin/bash -e
 
 # The cereal scripts were written by
@@ -11 +11 @@
 exec 2>&1
 
-export SHAREDIR="/usr/local/share/cereal"
-. "$SHAREDIR/common"
+export SHAREDIR="/usr/share/cereal"
+source "$SHAREDIR/common"
 
 # ensure that the socket is available
@@ -20 +20 @@
 
 mainrun() {
-    if ! check_user "$USER" ; then
-        failure "'$USER' not a valid user."
-    elif ! check_group "$GROUP" ; then
-        failure "'$GROUP' not a valid group."
-    elif ! check_tty_rw "$USER" "$GROUP" "$TTY" ; then
-        failure "$USER cannot open $TTY while in group $GROUP.  Not starting screen."
-    elif ! chown "$USER" ./socket ; then
-        failure "Can not properly set ownership of socket."
-    elif ! chmod 0600 ./socket ; then
-        failure "Can not properly set permissions on socket."
-    fi
+    check_user "$USER"
+    check_group "$GROUP"
+    check_tty_rw "$USER" "$GROUP" "$TTY"
+    chown "$USER" ./socket || failure "Can not properly set ownership of socket."
+    chmod 0600 ./socket || failure "Can not properly set permissions on socket."
     
-    echo "starting up cereal for host '$HOST'..."
-    exec  chpst -u "$USER:$GROUP" /usr/bin/screen -D -m -L -c "$SCREENRC" -S "cereal:$HOST" "$TTY" "$BAUD"
+    echo "starting up cereal session '$SESSION'..."
+    exec  chpst -u "$USER:$GROUP" /usr/bin/screen -D -m -L -c "$SCREENRC" -S "cereal:$SESSION" "$TTY" "$BAUD"
 }
 export -f mainrun